Lucene search
K

38 matches found

AlpineLinux
AlpineLinux
added 2026/01/20 1:1 a.m.3 views

CVE-2026-23876

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder ReadXBMImage allows an attacker to write controlled data past the allocated heap buffer when...

9.8CVSS5.9AI score0.00609EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/01/18 12:0 a.m.8 views

PT-2026-3528

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-13 and 6.9.13-38 Description ImageMagick is a free and open-source software used for editing and manipulating digital images. A heap buffer overflow vulnerability exists in the XBM image decoder ReadXBMImage...

9.8CVSS5.5AI score0.00609EPSS
Exploits1References138
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-4054

Malware in sbrugna...

5CVSS6AI score0.01662EPSS
Exploits1References42
Tenable Nessus
Tenable Nessus
added 2013/03/09 12:0 a.m.40 views

Ubuntu 6.06 LTS : firefox vulnerabilities (USN-645-2)

USN-645-1 fixed vulnerabilities in Firefox and xulrunner for Ubuntu 7.04, 7.10 and 8.04 LTS. This provides the corresponding update for Ubuntu 6.06 LTS. Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were tricked into opening a crafted...

10CVSS9.1AI score0.43921EPSS
Exploits15References17
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

Ubuntu 8.04 LTS : firefox-3.0, xulrunner-1.9 regression (USN-645-3)

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

10CVSS9.1AI score0.43921EPSS
Exploits15References17
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.32 views

Ubuntu Update for firefox vulnerabilities USN-645-2

Ubuntu Update for Linux kernel vulnerabilities USN-645-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN6452.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-645-2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

10CVSS1.1AI score0.43921EPSS
Exploits15References2
Tenable Nessus
Tenable Nessus
added 2008/10/09 12:0 a.m.42 views

Debian DSA-1649-1 : iceweasel - several vulnerabilities

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer overfl...

10CVSS9.1AI score0.43921EPSS
Exploits15References29
OSV
OSV
added 2008/10/08 12:0 a.m.40 views

DSA-1649-1 iceweasel - several vulnerabilities

Bulletin has no description...

10CVSS9.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/25 6:29 p.m.64 views

USN-645-3: Firefox and xulrunner regression

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

8.8AI score
Exploits0References1
Prion
Prion
added 2008/09/24 8:37 p.m.18 views

Information disclosure

The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to read uninitialized memory, and possibly obtain sensitive information in opportunistic circumstances, via a crafted XBM image file...

5CVSS5.9AI score0.01662EPSS
Exploits1References35Affected Software2
Cvelist
Cvelist
added 2008/09/24 6:0 p.m.24 views

CVE-2008-4069

The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to read uninitialized memory, and possibly obtain sensitive information in opportunistic circumstances, via a crafted XBM image file...

9AI score0.01662EPSS
Exploits1References35
CVE
CVE
added 2008/09/24 6:0 p.m.115 views

CVE-2008-4069

The XBM decoder flaw CVE-2008-4069 affects Mozilla Firefox up to 2.0.0.16/17 and SeaMonkey up to 1.1.x, where processing a crafted XBM image could read uninitialized memory and reveal sensitive data. Remediation per connected advisories: upgrade Firefox to 2.0.0.17 or newer and SeaMonkey to 1.1.1...

5CVSS9AI score0.01662EPSS
Exploits1References35Affected Software2
Ubuntu
Ubuntu
added 2008/09/24 11:39 a.m.69 views

USN-645-2: Firefox vulnerabilities

USN-645-1 fixed vulnerabilities in Firefox and xulrunner for Ubuntu 7.04, 7.10 and 8.04 LTS. This provides the corresponding update for Ubuntu 6.06 LTS. Original advisory details: Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were...

10CVSS8.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/24 10:20 a.m.79 views

USN-645-1: Firefox and xulrunner vulnerabilities

Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were tricked into opening a crafted hyperlink, an attacker could overflow a stack buffer and execute arbitrary code. CVE-2008-0016 It was discovered that the same-origin check in Firefox...

10CVSS8.9AI score0.43921EPSS
Exploits15
Tenable Nessus
Tenable Nessus
added 2008/09/24 12:0 a.m.31 views

Mozilla Firefox < 2.0.0.17 Multiple Vulnerabilities

Binary data 4692.prm...

10CVSS7.3AI score0.43921EPSS
Exploits15References25
UbuntuCve
UbuntuCve
added 2008/09/24 12:0 a.m.26 views

CVE-2008-4069

The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to read uninitialized memory, and possibly obtain sensitive information in opportunistic circumstances, via a crafted XBM image file...

5CVSS5.9AI score0.01662EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2008/09/24 12:0 a.m.30 views

SeaMonkey < 1.1.12 Multiple Vulnerabilities

The installed version of SeaMonkey is affected by various security issues : - Using a specially crafted UTF-8 URL in a hyperlink, an attacker might be able to exploit a stack buffer overflow in the Mozilla URL parsing routes to execute arbitrary code. MFSA 2008-37 - It is possible to bypass the...

10CVSS7.5AI score0.43921EPSS
Exploits16References25
Mozilla
Mozilla
added 2008/09/23 12:0 a.m.23 views

XBM image uninitialized memory reading — Mozilla

Security researcher Billy Hoffman discovered a bug in the XBM decoder that allowed random small chunks of uninitialized memory to be read. The severity of this bug was low and did not appear to cause any memory corruption...

5CVSS1.7AI score0.01662EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder